Received: by 2002:a05:6a10:7420:0:0:0:0 with SMTP id hk32csp3621340pxb; Mon, 21 Feb 2022 02:03:14 -0800 (PST) X-Google-Smtp-Source: ABdhPJwSV4V1SbNExsaqFAZfOiKHUcvBOnOVquM1mDtpbnUxDaV2RLH+VCZSzOqtV8OwpYLzMxKe X-Received: by 2002:a17:902:ea08:b0:14f:9de8:8b42 with SMTP id s8-20020a170902ea0800b0014f9de88b42mr7560651plg.66.1645437793868; Mon, 21 Feb 2022 02:03:13 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1645437793; cv=none; d=google.com; s=arc-20160816; b=bwSACpGQm0WRrjy4q3cur/xQ+5l1nFuG0BaJysk93Bp3PPjqBdzwlcZxuzQOXEfvZ2 nXODgQAWdT/n+8ixUjTrd3oo2ogP0flsTppdud+8O+JQ8UqAjmsF3obIqIp+Ds+91E6u E4Zy7Kfa1cOi2cCRyjldHnGpOfmrJo+ED48l0en/kvTwtyxuLw6Bvgu2pr5ltSyNr0KI JzCeQAcC/NEXilvO2yjF1lWbS4/YhZb/XcgUlXTlGd7F+7VYyZZh27JSZQsTyekMCUIr xk1982q6JxAzPwFe7a415pWULryow6LBB26R1GfdTN2gVtSM4Ms9KmrPYdkh57KauJRo tC+Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:mime-version:user-agent:references:message-id :in-reply-to:subject:cc:to:from:date:dkim-signature; bh=wNj2At/Lb1cMtynBOZ8XlVU5qM25oyY6W+W0DMlgh+Y=; b=RCHXM7ww5sHtHSHNPsOrO/ennyZFDpTpYN8qDVvDTNKjqEdOSpQuB6tTL50BPPxDz9 w74duxux4KskteRyYCCdFUxCf4uIE9B0BypK3iuyJijnntZFf+3BKGXJW4YUYWPHnmXP SXWHBECNOZEsQPVTZ6gBPZxk0mBpshkaprbxehYKwen/gn6Le1CTffmwaM1yKRn4IC3E 4j9QdiloI/OneQbDC620+ERbzCm1jePc48Ym9dQeBRavkwMZWO26myzEVieQTkvUJd98 35u4vPLF7YXlFzRGEPSosTxwisebg8+2eMCgwDBBTJX3Zr1lUS4keEEjdNTZPgNbIC0n JmaA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=TSlz0KJC; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id k7si16927256pgb.422.2022.02.21.02.02.54; Mon, 21 Feb 2022 02:03:13 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=TSlz0KJC; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231503AbiBUIPR (ORCPT + 99 others); Mon, 21 Feb 2022 03:15:17 -0500 Received: from mxb-00190b01.gslb.pphosted.com ([23.128.96.19]:50898 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231288AbiBUIPO (ORCPT ); Mon, 21 Feb 2022 03:15:14 -0500 Received: from dfw.source.kernel.org (dfw.source.kernel.org [IPv6:2604:1380:4641:c500::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 8F4CE19C26; Mon, 21 Feb 2022 00:14:50 -0800 (PST) Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by dfw.source.kernel.org (Postfix) with ESMTPS id 363D160FFE; Mon, 21 Feb 2022 08:14:50 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id BD281C340E9; Mon, 21 Feb 2022 08:14:47 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1645431289; bh=boZhPSB1xtCOEB/B6XCck3Jo6oe1RHC8RkPDFQS7pFQ=; h=Date:From:To:cc:Subject:In-Reply-To:References:From; b=TSlz0KJCs+LdQvPlsuuDJ4YEHMrf4VEt2dUmxXP3tHPmn3kll7WaZMDG25dVRELm5 7O9iSoLgTrjO5xM51JRzJIR/wYhGu4icHJhGFqHWW0mokW10ltghbaktaNYgtNW/HX UGY1N1qihUl9Zx6oxBHMU9GoaVrthtDF9swg1i1birLclgS95v9qUD2Yuzc8L9ex+I O+DnvkVHYjxZGucVY+Qer3y3fvMEs3iSBoOqT+Q1PjLQcjapGPNhHa4yCEiJyMsXvo qco+CoVpRu9PdaeH+EdYo5sSiv3Aa2+Ma55R5MPYkBWz9XPpxpGHMdZDvFT0QuBdma kYpxwtaj+6Y6w== Date: Mon, 21 Feb 2022 09:14:45 +0100 (CET) From: Jiri Kosina To: Pavel Skripkin cc: syzbot , alexandre.torgue@foss.st.com, benjamin.tissoires@redhat.com, linux-arm-kernel@lists.infradead.org, linux-input@vger.kernel.org, linux-kernel@vger.kernel.org, linux-stm32@st-md-mailman.stormreply.com, mcoquelin.stm32@gmail.com, syzkaller-bugs@googlegroups.com Subject: Re: [syzbot] KASAN: slab-out-of-bounds Read in thrustmaster_probe In-Reply-To: <43992c7a-c8e7-29a6-d0f0-f69abccd62a1@gmail.com> Message-ID: References: <000000000000d181a205d874c066@google.com> <43992c7a-c8e7-29a6-d0f0-f69abccd62a1@gmail.com> User-Agent: Alpine 2.21 (LSU 202 2017-01-01) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII X-Spam-Status: No, score=-7.1 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_HI, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, 21 Feb 2022, Pavel Skripkin wrote: > >> Looks like missing check for malicious device. Need to check number of > >> endpoints before accessing endpoints array > >> > >> > >> #syz test > >> git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master > > > > Thanks Pavel. Could you please send the patch with proper changelog and > > SOB my way? > > > > I've already posted the patch :) You can find it here [1] (you are in CC of > course) > > > [1] https://lore.kernel.org/all/20220220160114.26882-1-paskripkin@gmail.com/ Hmm, for some reason I don't see it in my inbox, but I'll grab it from the ML and apply. Thanks, -- Jiri Kosina SUSE Labs